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14 from an application server indicating an authorization to communicate with the application 

15 server, die application server interface further configured to monitor the session between an 

16 application server and a browser: and 

17 a load balancing device configured tn r eceive browser requests among a plurality of 

18 webservers, wherein the load balancing de vice is fuitW configured to screen the browser 

19 requests according to predetermined criteri a including reauthorization indicia, wherein browser 

20 requests are prevented fro m making an unfriendly attack to the system . 
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1 2. (Amended) A system according to Claim 1, wherein the application server interface 

2 configured to communicate with an application server only when a signal is received by the 
webserver that authorizes such communication according to privileges associated with a hmwser 

4 Prevent an unauthorized attack from mul t iple browser requests that may shut down an 

5 application server if the browser requests were allowed direct access 



1 3. (Amended) A system according to Claim 2, wherein the application server interface 

2 includes a monitoring mechanism for monitoring the activity of the application server during a 

3 session with a browser and a screening mel anism configured to prevent a^ess to hrowser 
requests that are not authorized to access an applicatio n server according to predetermined 

5 privileges . 

1 4. (Amended) A system according to Claim 2, wherein the application server interface 

2 includes a monitoring thread from for facilitating the monitoring by the webserver of the activity 

3 of the application server during a session with a browse r, the state server ^figured to ctefw 

4 P rivi Ieges associated with a browser request that d efine the p ara meters in wnteh „ browser mav 

5 access an application server . 



1 5. (Amended) A system according to Claim 2, wherein the application server interface is 

2 further configured to receive a monitoring thread from an application server so that the 

3 webserver can monitor the activities of a application server during a session between the 
application server and a browser, the state server mnfi ^d to define p rivi leges associated with 
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a browser reque st that define the parameters in which a browser mav access an application server 

6 including l imits to predefined information or services . 

1 6. (Amended) A system according to Claim 2, wherein the application server interface is 

2 further configured with a monitoring mechanism that allows an application server to monitor the 

3 activities of a webserver during a session between the application server and a browser, the state 

4 server configured to define privileges assoc i ated with a hrpwser request that define the 

5 Parameters in which a browser mav access ar. a pplication server including p r edetermined 

6 gommands a browser mav send to the ap plic ation server indicative of an unauthorized attack hv 

7 multiple browser commands . 



1 7. (Amended) A system according to Claim 2, wherein the application server interface is 

2 further configured to receive a monitoring thread from an application server so that an 

3 application server can monitor the activities of a webserver during a session between the 

4 application server and a browser, the state server configured to define nrivilftpes associated with 

5 § browser request that define predetermined c ommands a browser mav sand to the application 

6 server indicative of an una uthorized attack bv multip le browser commands 

1 8. (Amended) A system according to Claim 2, further comprising a second webserver 

2 communicating with the other webserver and with the state server, wherein the second webserver 

3 is further configured to take over a session occurring between the application server and a 
browser being monitored by the other webserver in the event the other webserver stops 

5 monitoring the session that is associated wj m a browser raqusst thai h ag heen screened an H 
*> authorized to access an application server . 
Cancel Claims 9 and 10 

1 11. (Amended) A system for communicating among a plurality of network servers 

communicating with a plurality of computer s and for preventing ^authorized attacks of browser 

3 attacks directed to an ap plication server comprising: 

4 a plurality of webservers corrununicating with and configured to receive a request from a 

5 web browser and to screen and route the browser request to an application server upon the 

6 receipt of a signal from the application server, wherein each we bserver la configured to maintain 
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7 information related to t he authorization of browser requests to prevent multiple unauthorized 

8 browser attacks directed to an application server : 

9 an application server interface configured to control communication between the plurality 

10 of webservers and an application server; c 

11 a state server configured to store data related to communication sessions occurring among 

12 a web browser, a webserver and an application server, wherein a first webserver is configured to 

13 retrieve information related to a session between a web browser and an application server and 

14 being monitored by a second webserver in the event that the second webserver terminates its 

15 monitoring of the session : and 

16 ajoad balancing device configured to receive browser requests among a plurality of 

17 webservers, wherein the load balancing de vice is furtlw configured to screen the browser 

18 requests according to predetermined cri teria including preauthorization indicia, wherein browser 

19 requests are prevented f rom making an unfriendly attack to the system . 

20 . 

1 12. (Amended) A system according to Claim 1 1 further comprising a database 

2 communicating with the state server and configured to store session information and for storing 

3 and maintaining browser request privile ges that define whether a browser is authorized to access 

4 an application server to prevent direct a ttacks of browser attacks nn application severs . 

1 13. (Amended) A system according to Claim 11, wherein the webserver is 

2 configured to route a browser request to an application server only upon the receipt of a signal 

3 from the application server indicating that the application server is ready to receive bmw^ 

4 requests, and wherein the state server is con fi gured for storing and maintaining browser req nftst 

5 Privileges that define whether a browser is authorized to access an application server to p revent 

6 direct attac ks of browser attacks on application severs . 

1 14. (Amended) A system according to Claim 1 1 further comprising a load 

2 balancing device configured to receive browser requests sent from computers communicating 

3 with the network system and to direct the requests among the plurality of [webservers] 

4 application servers, wherein the state <^ cr ia configured for storing and maintaining browser 
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5 request privileges that define whether a browser is authorized to ar.cess an application server to 

6 prevent di rect attacks of browser attacks on application severe . 

1 15. (Amended) A method of facilitating communication between a web browser 

2 and an application server, comprising: 

3 receiving a request for access to an application server; 

4 receiving the request by a first webserver, 

5 screening the request for determining authority to access the application server by. 

6 accessing the state server to determine whether a hmwsp. r is authorized to access an ap plication 

7 server to prevent attack s by multiple browser requests: 

8 receiving a signal from the application server indicating that it is ready to receive a 

9 browser request; 

communicating with the application server to create a monitoring thread between the 

11 webserver and the application server; and 

12 tfthe browser request is screened and authorized to access the application server, 

13 facilitating communication between the browser and the application server with the webserver. 

1 16. (Amended) A method according to Claim 15, further comprising: 

2 communicating with a state server to create a monitoring mechanism between the 

3 webserver and the state server to monitor communications between a web browser and an 

4 application server and to store information related to such communication s and to store privite ^- 

5 information associated with browser reg i es and information related tp multiple unanfhnrizftd 

6 browser requests to allow the system to pr event attacks by multiple hrn wser request* . 

1 17. (Amended) A method according to Claim 15, further comprising: 

2 routing the incoming browser request to one of a plurality of webservers; 

3 sc reening the browser requests bv retrieving b rowser req.mst privilege information from 

4 I fee state table and determining whether the br o wser request j„ authorized to he .^t tn »n 

5 application server to prevent unauthorized ac c ess to an application server with browser reg nal; 

6 receiving the request by a first webserver; and 
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7 transferring identification information related to other webservers to the application 

8 server. 

1 18. (Amended) A method according to Claim 15, wherein the step of 

2 facilitating communication between the application server and the webserver includes facilitating 

3 a session of communication between the application server and the webserver and to faeiiifar*. 

4 access only by authorized browser reque s ts to prevent attack on an application server bv browser 

5 requests . 



1 19. (Amended) A method according to Claim 15, wherein facilitating 

2 communication between the browser and the application server with the webserver is done in 

3 response to receiving a signal from the application server indicating that it is ready to receive a 

4 browser request and in re sponse to nreauthorizarion of access of a browser request to an 

5 application server bv a webserver bv acc essing the state table to determine the browser request 

6 privileges . 



1 21. (Amended) A method according to Claim 15, wherein the step of facilitating 

2 communication between the application server and the webserver includes facilitating a session 



3 of communication between the application server and the webserver in response tn reiving 

4 signal from the application server indic ating that it is ready to receive a browser request and 

5 response to preauthorizatinn of access of a browser request to an application server hv a 

6 webserver bv accessing the state table to d etermine the browser request privileges. 
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Cancel Claim 22 
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